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DETAILED ACTION 



1. 



This action is responding to application papers filed 2-25-2004. 



2. 



Claims 1 - 30 are pending. Claims 1 , 1 1 , 20, 26 are independent. 



Claim Rejections - 35 USC § 102 



3. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102(e) 
that form the basis for the rejections under this section made in this Office action: 

(e) the invention was described in (1) an application for patent, published under section 122(b), by 
another filed in the United States before the invention by the applicant for patent or (2) a patent 
granted on an application for patent by another filed in the United States before the invention by the 
applicant for patent, except that an international application filed under the treaty defined in section 
351(a) shall have the effects for purposes of this subsection of an application filed in the United States 
only if the international application designated the United States and was published under Article 21(2) 
of such treaty in the English language. 

4. Claims 1 - 4, 7 - 10 are rejected under 35 U.S.C. 102(e) as being anticipated by 
Chen et al. (US Patent No. 7,069,439). 

With Regards to Claim 1, Chen discloses a method comprising: 
a) measuring a trusted (see Chen col. 3, lines 1-4; col. 4, lines 26-31: Trusted 
Computing Platform concept, prior art 6,988,250) original portion of firmware; 
(see Chen col. 8, lines 6-9: obtain an integrity metric or measurement of trust 
state for platform firmware; col. 9, lines 5-13: col. 9, lines 13-20: functional block 
or portion (i.e. original) of BIOS or firmware utilized for a measurement to 
become trusted portion) 
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b) securely storing the measurement of the trusted original portion of firmware; (see 
Chen col. 7, lines 52-57: store integrity metric or measurement) 

c) measuring an unqualified current portion of firmware; (see Chen col. 8, lines 6- 
16: obtain an integrity metric measurement for a platform or firmware; col. 9, lines 
13-20: functional block or portion (i.e. unqualified portion) of BIOS or firmware 
utilized for a measurement to be compared against original portion) 

d) retrieving the measurement of the trusted original portion of firmware; (see Chen 
col. 9, lines 49-54: retrieve from storage integrity metric or measurement for 
trusted platform) 

e) comparing the measurement of the trusted original portion of firmware to the 
measurement of the unqualified current portion of firmware; (see Chen col. 9, 
lines 49-54: comparison between two integrity metrics to determine match) and 

f) if the measurements match, executing the current portion of firmware as a trusted 
process, (see Chen col. 9, lines 49-54; col. 13, lines 9-13: match successful, 
trusted process executed) 

With Regards to Claim 2, Chen discloses the method of claim 1, wherein securely 
storing the measurement of the trusted portion of original firmware comprises storing 
the measurement in a trusted platform module (TPM). (see Chen col. 7, lines 52-57; col. 
9, lines 49-54; col. 9, lines 65-67: store an integrity metric or measurement within 
trusted platform or firmware) 
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With Regards to Claims 3, 4, Chen discloses the method of claim 2, wherein the 
trusted platform module is embodied as a hardware component or embodied as a 
software-based component, (see Chen col. 7, lines 44-46: software or programmed 
microcontroller, hardware implementation as an Integrated Circuit (IC)) 

With Regards to Claim 7, Chen discloses the method, article of manufacture of 
claims 1 , further comprising performing a core root of trust measurement (CRTM). (see 
Chen col. 8, lines 4-9: measure integrity metric or root of trust measurement) 

With Regards to Claim 8, Chen discloses the method of claim 7, wherein the CRTM 
is a static CRTM comprising a measurement of a trusted bootable portion of firmware, 
(see Chen col. 7, lines 19-21: integrity metric or measurement acquired or utilized 
during trusted secure boot procedure) 

With Regards to Claim 9, Chen discloses the method of claim 7, wherein the CRTM 
is a dynamic CRTM measured via execution of processor microcode, (see Chen col. 9, 
lines 10-20: microcode utilized to boot system, create a dynamic integrity metric or root 
of trust measurement based on portions of firmware generated from an ensemble 
digest) 

With Regards to Claim 10, Chen discloses the method of claim 1, further 
comprising: creating a descriptor indicating where the trusted original portion of 
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firmware is located, (see Chen col. 10, lines 16-21 : certificate, containing or specify 
location of an integrity metric or measurement) 

Claim Rejections - 35 USC § 103 

5. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

6. Claims 5, 1 1 - 16, 18 - 20, 23 - 28 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Chen in view of Challener (US Patent No. 20050138393). 

With Regards to Claim 5, Chen discloses the method of claim 1 , further comprising: 
enforcing a security mechanism, wherein a processor must be operating to retrieve the 
measurement of the trusted portion of firmware, (see Chen col. 3, lines 29-32: 
processor; col. 3, line 67 - col. 4, line 1: security mechanism implemented; col. 8, lines 
6-9: measure integrity metric or measurement) Chen does not specifically disclose the 
usage of access levels or locality within a trusted environment. However, Challener 
discloses wherein enforcing a locality-based security mechanism, wherein a processor 
must be operating in at least one of a given locality and a higher locality to retrieve the 
measurement of the trusted portion of firmware, (see Challener paragraph [0015], lines 
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1-6; paragraph [0016], lines 9-12: access levels or locality utilized by trust 
measurement) 

It would have been obvious to one of ordinary skill in the art to have modified Chen 
as taught by Challener to enable the capability to utilize access levels or locality. One 
of ordinary skill in the art would have been motivated to employ the teachings of 
Challener in order to leverage existing security systems. In addition, Challener enables 
the implementation of a very secure multi-level security structure (i.e. unclassified, 
classified, top secret), which enables access to information only by a user with a 
security level equal to the level of the particular information, (see Challener paragraph 
[0004], lines 1-13: "... allow users who have different levels of security to access a 
system . . . implement a system in which stored data could be classified into two or more 
levels of security and access to the data is controlled by the security level of the user . . . 
implemented system leveraged security mechanisms already found in some systems. 
... ") 

With Regards to Claim 11, Chen discloses a method, comprising: 
a) measuring at least one integrity metric corresponding to a trusted portion of an 

original firmware configuration; (see Chen col. 8, lines 6-9: measure an integrity 

metric or measurement of trust state for platform firmware) 



Chen discloses storing a respective measurement corresponding to each of said at 
least one integrity metric of a trusted platform module(TPM) and the secret 
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contained in a digest including the secret concatenated with the respective 
measurement(s) (see Chen col. 7, lines 44-46: machine readable medium; col. 11, 
lines 5-14: secret and integrity metric or measurement combined and stored within 
digest), wherein a current firmware configuration includes a portion that matches the 
trusted portion of the original firmware configuration, (see Chen col. 9, lines 49-54: 
comparison between two integrity metrics to determine match) Chen does not 
specifically disclose storing a respective measurement corresponding to one 
integrity metric in a corresponding platform configuration register (PCR) nor sealing 
a secret to the TPM, the secret contained in a digest including the secret 
concatenated with the respective measurement(s) stored in the PCR(s), wherein to 
unseal the secret. 

However, Challener discloses: 

b) a respective measurement in a corresponding platform configuration register 
(PCR) of a trusted platform module(TPM); (see Challener paragraph [0019], lines 
3-6; paragraph [0019], lines 11-12; paragraph [0020], lines 1-3: integrity metric or 
measurement stored within a platform configuration register (PCR)) 

c) sealing a secret to the TPM, the secret, and to unseal the secret the integrity 
metric or measurement combined with a secret, (see Challener paragraph 
[0021], lines 1-8; paragraph [0031], lines 11-15: seal procedure utilized within a 
trusted platform) 
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It would have been obvious to one of ordinary skill in the art to have modified Chen 
as taught by Challenerto enable the capability perform a seal procedure within a trusted 
environment and to utilize platform configuration register (PCR). One of ordinary skill in 
the art would have been motivated to employ the teachings of Challener in order to 
leverage existing security systems. In addition, Challener enables the implementation 
of a very secure multi-level security structure (i.e. unclassified, classified, top secret), 
which enables access to information only by a user with a security level equal to the 
level of the particular information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 12, Chen discloses wherein concatenating the secret and 
the respective measurement(s) used to form the digest, (see Chen col. 1 1, lines 5-14: 
combine nonce or secret, and integrity metric or measurement stored within digest) 
Chen does not specifically disclose specifying a locality to be associated with a trusted 
firmware process nor concatenating the locality to the secret and the respective 
measurement(s) used to form the digest stored in the PCR(s). 
However, Challener discloses: 

a) specifying a locality to be associated with a trusted firmware process and 
concatenated with secret and measurement; (see Challener paragraph [0015], 
lines 1-6; paragraph [0016], lines 9-12: access levels or locality utilized by trust 
measurement, add access information to concatenation) 

b) concatenating the locality to the secret and the respective measurement(s) used 
to form the digest stored in the PCR(s). (see Challener paragraph [0015], lines 1- 
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6; paragraph [0016], lines 9-12: designate access levels or locality utilized by 
trust measurement and combined in digest, add access information to 
concatenation; paragraph [0019], lines 3-6; paragraph [0019], lines 11-12; 
paragraph [0020], lines 1-3: integrity metric or measurement stored within a 
platform configuration register (PCR)) 
It would have been obvious to one of ordinary skill in the art to have modified 
Chen as taught by Challener to enable the usage of access levels or locality, and 
usage of platform configuration registers (PCRs). One of ordinary skill in the art 
would have been motivated to employ the teachings of Challener in order to 
leverage existing security systems. In addition, Challener enables the 
implementation of a very secure multi-level security structure (i.e. unclassified, 
classified, top secret), which enables access to information only by a user with a 
security level equal to the level of the particular information, (see Challener 
paragraph [0004], lines 1-13) 

With Regards to Claim 13, Chen and Challener combination discloses the method 
of claim 1 1 , further comprising: 

a) asserting a locality corresponding to an execution privilege level; (see Challener 
paragraph [0015], lines 1-6; paragraph [0016], lines 9-12: access levels or 
locality utilized by trust measurement, locality or access, privileged level) 

b) storing at least one of the respective measurement(s) in a PCR that may be 
extended if a current execution privilege level matches or exceeds the locality of 
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the execution privilege level that is asserted; (see Challener paragraph [0019], 
lines 3-6; paragraph [0019], lines 11-12; paragraph [0020], lines 1-3: integrity 
metric or measurement stored within a platform configuration register (PCR); 
paragraph [0015], lines 1-6; paragraph [0016], lines 9-12: access levels or 
locality utilized by trust measurement, add access information to concatenation) 
It would have been obvious to one of ordinary skill in the art to have modified Chen 
as taught by Challener to enable the usage of access levels or locality and platform 
configuration register (PCRs) within a trusted environment. One of ordinary skill in the 
art would have been motivated to employ the teachings of Challener in order to 
leverage existing security systems. In addition, Challener enables the implementation 
of a very secure multi-level security structure (i.e. unclassified, classified, top secret), 
which enables access to information only by a user with a security level equal to the 
level of the particular information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 14, Chen and Challener combination discloses the method 
of claim 12, wherein the locality is locality 1. (see Challener paragraph [0015], lines 1-6; 
paragraph [0016], lines 9-12: access levels or locality utilized by trust measurement) 

It would have been obvious to one of ordinary skill in the art to have modified Chen- 
as taught by Challener to enable the usage of access levels or locality. One of ordinary 
skill in the art would have been motivated to employ the teachings of Challener in order 
to leverage existing security systems. In addition, Challener enables the 
implementation of a very secure multi-level security structure (i.e. unclassified, 
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classified, top secret), which enables access to information only by a user with a 
security level equal to the level of the particular information, (see Challener paragraph 
[0004], lines 1-13) 

With Regards to Claim 15, Chen discloses the method of claim 1 1 , wherein the 
trusted portion of the original firmware configuration includes a trusted boot block, (see 
Chen col. 7, lines 19-21; col. 9, lines 43-44: secure boot, boot block utilized within 
trusted device) 

With Regards to Claim 16, Chen discloses the method of claim 15, further 
comprising: measuring the trusted boot block to obtain a core root of trust measurement 
(CRTM). (see Chen col. 8, lines 6-9: measure an integrity metric or root of trust 
measurement; col. 7, lines 19-21: integrity metric or measurement for boot procedure 
utilized) 

With Regards to Claim 18, Chen discloses the method of claim 1 1 , further 
comprising wherein executing firmware as a trusted process, (see Chen col. 13, lines 
9-1 3: execute trusted process) Chen does not specifically disclose attempting to 
unseal the secret sealed to the TPM nor executing firmware as a trusted process if the 
secret is unsealed, otherwise executing the firmware process as an untrusted process. 
However, Challener discloses: 
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a) attempting to unseal the secret sealed to the TPM; (see Challener paragraph 
[0021], lines 1-8; paragraph [0031], lines 3-7: unseal procedure utilized within a 
trusted platform) and 

b) executing firmware as a trusted process if the secret is unsealed, otherwise 
executing the firmware process as an untrusted process, (see Challener 
paragraph [0021], lines 1-8; paragraph [0031], lines 3-7: unseal procedure 
utilized within a trusted platform) 

It would have been obvious to one of ordinary skill in the art to have modified 
Chen as taught by Challener to enable the capability to perform an unseal procedure 
within a trust environment. One of ordinary skill in the art would have been 
motivated to employ the teachings of Challener in order to leverage existing security 
systems. In addition, Challener enables the implementation of a very secure multi- 
level security structure (i.e. unclassified, classified, top secret), which enables 
access to information only by a user with a security level equal to the level of the 
particular information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 19, Chen discloses the method of claim 1 1 , wherein the 
integrity metric is measured by executing microcode on a processor, (see Chen col. 3, 
lines 29-32: processor; col. 8, lines 6-9: measure integrity metric or measurement; col. 
7, lines 46-47: execute programmable microcode on a trusted device) 



With Regards to Claim 20, Chen discloses an article of manufacture, comprising: 
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a) a machine-readable medium have instructions stored thereon (see Chen col. 7, 
lines 44-46: machine readable medium), 

which when executed perform operations including: 

b) measuring a trusted portion of an original set of firmware components during a 
pre-boot phase of a computer system; (see Chen col. 8, lines 6-9: measure an 
integrity metric or measurement of trust state for platform firmware) 

d) measuring a portion of a current set of firmware components during an operating 
system (OS)-runtime phase of the computer system determining if the 
measurement of the portion of the current set of firmware components matches 
the measurement of the portion of the original firmware components; (see Chen 
col. 6, lines 34-42: BIOS or trusted device hands control over to OS) and 

e) providing indicia to a processor to execute the portion of the current set of 
firmware components as a trusted process if the measurements match, (see 
Chen col. 13, lines 9-13: match successful, process executed) 

Chen discloses wherein storing the measurement of the trusted portion of the 
original set of firmware components, (see Chen col. 7, lines 52-57; col. 9, lines 49- 
54: storage of integrity metric or measurement within certificate for trusted device) 
Chen does not specifically disclose the usage of platform configuration register in 
trust operations. 
However, Challener discloses: 
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c) storing the measurement of the trusted portion of the original set of firmware 
components in a trusted platform module (TPM) platform configuration register 
(PCR); (see Challener paragraph [0019], lines 3-6; paragraph [0019], lines 11-12; 
paragraph [0020], lines 1-3: integrity metric or measurement stored within a 
platform configuration register (PCR)) 
It would have been obvious to one of ordinary skill in the art to have modified 
Chen as taught by Challener to enable usage of platform configuration registers 
(PCRs) within a trust environment. One of ordinary skill in the art would have been 
motivated to employ the teachings of Challener in order to leverage existing security 
systems. In addition, Challener enables the implementation of a very secure multi- 
level security structure (i.e. unclassified, classified, top secret), which enables 
access to information only by a user with a security level equal to the level of the 
particular information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 23, Chen discloses the method, article of manufacture of 
claim 20, further comprising performing a core root of trust measurement (CRTM). (see 
Chen col. 8, lines 6-9: measure integrity metric or root of trust measurement) 

With Regards to Claim 24, Chen discloses the article of manufacture of claim 20, 
wherein the machine-readable medium (see Chen col. 7, lines 44-46: machine readable 
medium; col. 1 1 , lines 5-14: secret and measurement combined and stored within 
digest) comprises further instructions to perform operations including: sealing a secret 
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to the TPM, the secret contained in a digest including the secret concatenated with the 
measurement of the trusted portion of the original set of firmware that is stored in the 
PCR. However, Challener discloses wherein to perform operations including: sealing a 
secret to the TPM, the secret contained in a digest including the secret concatenated 
with the measurement of the trusted portion of the original set of firmware that is stored 
in the PCR. (see Challener paragraph [0021], lines 1-8; paragraph [0031], lines 11-15: 
seal procedure utilized within a trusted platform; paragraph [0019], lines 3-6; paragraph 
[0019], lines 11-12; paragraph [0020], lines 1-3: integrity metric or measurement stored 
within a platform configuration register (PCR)) 

It would have been obvious to one of ordinary skill in the art to have modified Chen 
as taught by Challener to seal a parameter within a trusted environment and utilize a 
platform configuration register (PCR) for trust operations. One of ordinary skill in the 
art would have been motivated to employ the teachings of Challener in order to 
leverage existing security systems. In addition, Challener enables the implementation 
of a very secure multi-level security structure (i.e. unclassified, classified, top secret), 
which enables access to information only by a user with a security level equal to the 
level of the. particular information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 25, Chen discloses the article of manufacture of claim 20, 
wherein the article comprises a non-volatile memory device, (see Chen col. 7, lines 51- 
52; col. 7, lines 19-21; col. 10, lines 16-21: non-volatile memory) Chen does not 
specifically disclose a flash memory device. However, Challener discloses wherein the 
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article comprises a flash drive, (see Challener paragraph [0017], lines 7-11; paragraph 
[0022], lines 1-6: flash memory) 

It would have been obvious to one of ordinary skill in the art to have modified Chen 
as taught by Challener to utilize a flash memory device. One of ordinary skill in the art 
would have been motivated to employ the teachings of Challener in order to leverage 
existing security systems. In addition, Challener enables the implementation of a very 
secure multi-level security structure (i.e. unclassified, classified, top secret), which 
enables access to information only by a user with a security level equal to the level of 
the particular information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 26, Chen discloses a system comprising: 

a) a processor, including microcode instructions; (see Chen col. 7, lines 46-47: 
microcontroller) 

b) memory, operatively coupled to the processor; a trusted platform module, 
operatively coupled to the processor; (see Chen col. 3, lines 29-32: processor; 
col. 7, lines 39-42: memory) and 

d) retrieving a first measurement stored in the TPM, the first measurement 
comprising a measurement of a trusted portion of the firmware instructions; (see 
Chen col. 7, lines 52-57; col. 9, lines 49-54: retrieve integrity metric or 
measurement from certificate within trusted device) 

e) measuring a current portion of firmware instructions analogous to the trusted 
portion of the firmware instructions to obtain a second measurement; (see Chen 
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col. 8, lines 6-9: obtain an integrity metric or measurement of trust state for 
platform firmware) 

f) comparing the first measurement to the second measurement; (see Chen col. 9, 
lines 49-54: compare integrity metric or measurement values) 

g) if the first and second measurements match, programming the microprocessor to 
execute the current portion of firmware instructions as a secure process, (see 
Chen col. 13, lines 9-13: execute process, if match successful) 

Chen discloses a non-volatile or analogous flash type memory, (see Chen col. 7, 
lines 51-52; col. 7, lines 19-21; col. 10, lines 16-21 : flash or non-volatile memory) 
Chen does not specifically disclose a flash type memory device. 
However, Challener discloses: 

c) a flash device having firmware instructions stored thereon (see Challener 
paragraph [0017], lines 7-1 1 ; paragraph [0022], lines 1-6: flash type memory 
utilized), which when executed on the processor perform operations including: 
It would have been obvious to one of ordinary skill in the art to have modified 
Chen as taught by Challener to enable the usage of a flash type memory within a 
trust environment. One of ordinary skill in the art would have been motivated to 
employ the teachings of Challener in order to leverage existing security systems. In 
addition, Challener enables the implementation of a very secure multi-level security 
structure (i.e. unclassified, classified, top secret), which enables access to 
information only by a user with a security level equal to the level of the particular 
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information, (see Challener paragraph [0004], lines 1-13) 

With Regards to Claim 27, Chen discloses the system of claim 26, wherein the 
microcode instructions may be executed to perform the operations of generating a 
dynamic core root of trust measurement (CRTM) for the system, (see Chen col. 8, lines 
6-9: measure an integrity metric or measurement of trust state for platform firmware; col. 
9, lines 10-20: microcode utilized to boot system creates a dynamic integrity metric or 
root trust measurement based on portions of firmware generated from an ensemble 
digest) 

With Regards to Claim 28, Chen discloses the system of claim 26, wherein the 
microcode instructions may be executed to perform operations including: 

a) measuring the trusted portion of the firmware instructions to produce the first 
measurement; (see Chen col. 8, lines 6-9: measure an integrity metric or 
measurement of trust state for platform firmware, first measurement) 

Chen discloses the storage of integrity metric or measurement, (see Chen col. 7, 
lines 52-57; col. 9, lines 49-54: storage of integrity metric or measurement) Chen 
does not specifically disclose the usage of a platform configuration register (PCR). 

However, Challener discloses: 

b) storing the first measurement in a platform configuration register (PCR) of the 
TPM. (see Challener paragraph [0019], lines 3-6; paragraph [0019], lines 11-12; 



» » 
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paragraph [0020], lines 1-3: integrity metric or measurement stored within a 
platform configuration register (PCR); paragraph [0019], lines 16-20: integrity 
metric or measurement stored within PCR) 
It would have been obvious to one of ordinary skill in the art to have modified 
Chen as taught by Challener to enable usage of platform configuration registers 
(PCRs) within a trusted environment. One of ordinary skill in the art would have 
been motivated to employ the teachings of Challener in order to leverage existing 
security systems. In addition, Challener enables the implementation of a very 
secure multi-level security structure (i.e. unclassified, classified, top secret), which 
enables access to information only by a user with a security level equal to the level 
of the particular information, (see Challener paragraph [0004], lines 1-13) 

7. Claim 6 is rejected under 35 U.S.C. 103(a) as being unpatentable over Chen in 
view of Zimmer (US PGPUB No. 20040073806). 

With Regards to Claim 6, Chen discloses the method of claims 1, wherein . 
measuring the trusted original portion of firmware comprises measuring a startup 
portion of firmware code, (see Chen col. 8, lines 6-9: measure integrity metric or 
measurement of trusted state for platform firmware; col. 7, lines 19-21; col. 9, lines 43- 
44: secure boot or startup procedure) Chen does not specifically disclose the usage of 
platform management interrupt (PMI) firmware and system management mode (SMM) 
firmware. However, Zimmer discloses wherein system management mode (SMM) 
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firmware code and platform management interrupt (PMI) firmware code, (see Zimmer 
paragraph [0012], lines 1-7; paragraph [0016], lines 1-16; paragraph [0018], lines 3-9: 
usage of platform management firmware and system management firmware) 

It would have been obvious to one of ordinary skill in the art to have modified Chen 
as taught by Zimmer to enable the usage of platform management firmware and system 
management firmware. One of ordinary skill in the art would have been motivated to 
employ the teachings of Zimmer in order to identify a user and a computer platform as 
trustworthy, (see Zimmer paragraph [0003], lines 1-3: " ... Trusted Computing Platform 
Alliance (TCPA) offers one possible standard for identifying a user and a computer as 
trustworthy. ... "; paragraph [0003], lines 14-17: "... proper network authentication 
techniques are used, both the user and third parties can be confident that the computer 
is "trustworthy". ...") 

8. Claims 17, 21, 22, 29, 30 are rejected under 35 U.S.C. 103(a) as being 
unpatentable over Chen in view of Challener and further in view of Zimmer. 

With Regards to Claim 17, Chen discloses the method of claim 1 1 wherein 
measuring the trusted original portion of firmware comprises measuring a startup 
portion of firmware code, (see Chen col. 4, lines 60-64: trusted platform utilizing an 
integrity metric or trust measurement; col. 7, lines 19-21: secure boot or startup 
procedure) Chen and Challener combination does not specifically disclose the usage 
of platform management interrupt firmware and system management mode (SMM) 
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firmware. However, Zimmer discloses wherein each set of firmware components 
correspond to one of system management mode (SMM) firmware code and platform 
management interrupt (PMI) firmware code, (see Zimmer paragraph [0012], lines 1-7; 
paragraph [0016], lines 1-16; paragraph [0018], lines 3-9: usage of platform 
management firmware and system management firmware) 

It would have been obvious to one of ordinary skill in the art to have modified 
Chen-Challener as taught by Zimmer to enable the usage of platform management 
interrupt firmware and system management mode firmware. One of ordinary skill in the 
art would have been motivated to employ the teachings of Zimmer in order to identify a 
user and a computer platform as trustworthy, (see Zimmer paragraph [0003], lines 1 -3; 
paragraph [0003], lines 14-17) 

With Regards to Claim 21, Chen discloses the article of manufacture, system of 
claims 20, and utilizing sets of firmware components, (see Chen col. 4, lines 59-64: 
trusted platform utilizing an integrity metric or measurement) Chen and Challener 
combination does not specifically disclose the usage of system management mode 
firmware. However, Zimmer discloses wherein each set of firmware components 
correspond to system management mode (SMM) firmware, (see Zimmer paragraph 
[0012], lines 1-7; paragraph [0016], lines 1-16: usage of system management firmware) 

It would have been obvious to one of ordinary skill in the art to have modified 
Chen-Challener as taught by Zimmer to utilize system management mode firmware. 
One of ordinary skill in the art would have been motivated to employ the teachings of 
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Zimmer in order to identify a user and a computer platform as trustworthy, (see 
Zimmer paragraph [0003], lines 1-3; paragraph [0003], lines 14-17) 

With Regards to Claim 22, Chen discloses the article of manufacture, system of 
claims 20, and utilizing sets of firmware components, (see Chen col. 4, lines 59-64: 

* 

trusted platform utilizing integrity metric or measurement) Chen and Challener 
combination does not specifically disclose the usage of platform management interrupt 
firmware. However, Zimmer discloses wherein each set of firmware components 
correspond to platform management interrupt (PMI) firmware, (see Zimmer paragraph 
[0012], lines 1-7; paragraph [0016], lines 1-16; paragraph [0018], lines 3-9: usage of 
platform management firmware) 

It would have been obvious to one of ordinary skill in the art to have modified 
Chen-Challener as taught by Zimmer to utilize platform management interrupt firmware. 
One of ordinary skill in the art would have been motivated to employ the teachings of 
Zimmer in order to identify a user and a computer platform as trustworthy, (see 
Zimmer paragraph [0003], lines 1-3; paragraph [0003], lines 14-17) 

With Regards to Claim 29, Chen discloses the article of manufacture, system of 
claim 26, and utilizing sets of firmware components, (see Chen col. 4, lines 59-64: 
trusted platform utilizing an integrity metric or measurement) Chen and Challener 
combination does not specifically disclose the usage of system management mode 
firmware. However, Zimmer discloses wherein each set of firmware components 
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correspond to system management mode (SMM) firmware, (see Zimmer paragraph 
[0012], lines 1-7; paragraph [0016], lines 1-16: usage of system management firmware) 

It would have been obvious to one of ordinary skill in the art to have modified 
Chen-Challener as taught by Zimmer to utilize system management mode firmware. 
One of ordinary skill in the art would have been motivated to employ the teachings of 
Zimmer in order to identify a user and a computer platform as trustworthy, (see 
Zimmer paragraph [0003], lines 1-3; paragraph [0003], lines 14-17) 

With Regards to Claim 30, Chen discloses the article of manufacture, system of 
claim 26, and utilizing sets of firmware components, (see Chen col. 4, lines 59-64: 
trusted platform utilizing integrity metric or measurement) Chen and Challener 
combination does not specifically disclose the usage of platform management interrupt 
firmware. However, Zimmer discloses wherein each set of firmware components 
correspond to platform management interrupt (PMI) firmware, (see Zimmer paragraph 
[0012], lines 1-7; paragraph [0016], lines 1-16; paragraph [0018], lines 3-9: usage of 
platform management firmware) 

It would have been obvious to one of ordinary skill in the art to have modified 
Chen-Challener as taught by Zimmer to utilize platform management interrupt firmware. 
One of ordinary skill in the art would have been motivated to employ the teachings of 
Zimmer in order to identify a user and a computer platform as trustworthy, (see 
Zimmer paragraph [0003], lines 1-3; paragraph [0003], lines 14-17) 
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Conclusion 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Carlton Johnson whose telephone number is 571-270- 
1032. The examiner can normally be reached Monday through Friday from 8:00AM to 
5:00PM. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, David Robertson, can be reached on 571-272-4186. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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